Post navigation

Notice of Security Breaches (2)

Note that the Commission’s proposal is only that public electronic communications services providers report security breaches to data subjects.

In my view this is a missed opportunity – there should as a minimum be an obligation to report security breaches to the national regulatory authority. The Information Commissioner has been pushing for this with the Art 29 Working Party.